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This listing of claims will replace all prior versions and listings of the claims in 
the application: 

LISTING OF THE CLAIMS: 

1-2. (canceled) 



3. 



(original): A method for encoding and authenticating a data block in a fault-tolerant 
fashion, the method including: 



(1 ) encoding the data 
(a) hashing a first 



bloc(k, the encoding including: 

fjortion of the data block to obtain a first hash value; 



(b) 



hashing a 
value to obtain 
value is derived 
block and a 



third 



(2) 



transmitting an 
stream includes the 
the first portion of the 



(3) receiving the encoded 



(c) receiving the 
stream, and thd 



combination of the first hash value and a first verification 
a second verification value, wherein the first verification 
, at least in part, from a hashed portion of the data 
verification value; 



(c) encrypting the second verification value; 



encoded data stream to a receiver, wherein the encoded data 
encrypted second verification value, the first hash value, 
data block, and the first verification value; and 



data stream and verifying its integrity, including: 



(a) receiving the erpcrypted second verification value; 

(b) decrypting the pncrypted second verification value; 



first 



hash value, a first portion of the encoded data 
first verification value; 



-2- 
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(e) 



hashing the first 
computed hash 



comparing the 
the first 
a combination 
obtain a first ca 



first re-computed hash with the first hash value, and, if 
re-computed hash is not equal to the first hash value, hashing 
cf the first hash value and the first verification value to 
culated hash value; and 



(f) 



comparing the 
value, and, if 
calculated hash 
stream for use. 



Second verification value with the first calculated hash 
second verification value is equal to the first 
value, releasing the first portion of the encoded data 



(b) hashing a 

value to obtain 
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portion of the encoded data stream to obtain a first re- 



(original): A method for encoding and authenticating a data block, the method 
including: 

(1 ) generating a chain of dlata verification values, including: 

(a) hashing a first 4ub-block of the data block to obtain a first hash value; 



combination of the first hash value and a first verification 
a second verification value; 



(c) hashing a secopd sub-block of the data block to obtain a second hash 
value; 

(d) hashing a combination of the second hash value and a third verification 
value to obtain a fourth verification value, wherein the third verification 
value is derived, at least in part, from the second verification value; 

(e) generating a di gital signature by signing the fourth verification value 
using a first cryptographic key; 
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(2) transmitting an encoded 

including the digital signature 
value, the second 
verification value; and 



data stream to a receiver, the encoded data stream 
f the second sub-block, the third verification 
verification value, the first sub-block, and the first 



(3) receiving and verifying 



(a) 
(b) 

(o) 

(d) 

(e) 



receiving the digital signature; 



using a second 
obtain the fourth 



cryptographic key to unsign the digital signature to 
verification value; 



receiving a first 
verification valu 



hashing the firs 
received hash 



(f) comparing the 



(g) releasing the firlst 
fourth verification 
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the integrity of the encoded data stream, including: 



portion of the encoded data stream and the third 



portion of the encoded data stream to obtain a first 
vfalue; 



hashing a combination of the first received hash value and the third 
verification value to obtain a first calculated hash; 



ourth verification value with the first calculated hash; 



portion of the encoded data stream for use if the 
value is equal to the first calculated hash; 



<h) receiving the second verification value; 

(i) verifying that the second verification value is securely derived from the 
third verification value; 



(j) receiving a 
verification 



second portion of the encoded data stream and the first 
value; 
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6. 



8. 



(k) 



(I) 



hashing the 
second receivet 



secpnd portion of the encoded data stream to obtain a 
hash value; 



hashing a 
verification valufe 



combination of the second received hash value and the first 
to obtain a second calculated hash; 



(m) comparing the 
hash; and 



(n) releasing the 
second 
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second verification value with the second calculated 



sdcond portion of the encoded data stream for use if the 
verification value is equal to the second calculated hash. 



im 4, in which receiving and verifying the integrity of the 



transmitted consecutively in 

the second verification value 
transmitted consecutively in 



equal to the second calculated hash. 



(original): A method as in cla 
encoded data stream further includes 

(3)(o) preventing further pro< messing of the encoded data stream if the second 
verification value is no 

(original): A method as in cIe im 4 P in which the combination of the first hash value 
and the first verification valu^ comprises a concatenation of the first hash value and 
the first verification value. 

(original): A method as in els im 4, in which: 

the digital signature, the second sub-block, and the third verification value are 
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he encoded data stream; and 

the first sub-block, and the first verification value are 
he encoded data stream. 



(original): A method as in cl£iim 4, in which the first cryptographic key is identical to 
the second cryptographic key. 
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9. 



10. 



11. 



12. 



(original); A method as in cla 
sender's private key, and in 
sender's public key. 



m 4, in which the first cryptographic key comprises a 
wjtiich the second cryptographic key comprises the 



(original): A method as in cla 
predefined data pattern. 



(original): A method as in 
the second hash value, and 
encoded data stream further 



(3)(C)(1) 
(d)(1) 



receiving the se 



replacing the 
the first received 



(original): A method as in 
the second hash value, and 
encoded data stream further 



(3)(c)(1) 
(9X1) 
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m 4, in which the first verification value comprises a 



claim 4 P in which the encoded data stream further includes 
itf) which receiving and verifying the integrity of the 
ncludes: 



cond hash value; 



first 



received hash value with the second hash value if 
hash value is not equal to the second hash value. 



clslim 4, in which the encoded data stream further includes 
ih which receiving and verifying the integrity of the 
includes: 



receiving the second hash value; 

if the fourth verfication value is not equal to the first calculated hash, 
generating a fir st recovered hash value by hashing a combination of 
the second haslh value and the third verification value; 



(g)(2) 



(g)0) 



comparing the 
value; 



releasing the firfst 
fourth verification 



burth verification value with the first recovered hash 



portion of the encoded data stream for use if the 
value is equal to the first recovered hash value. 
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13. 



14. 



15. 



(original); A method as in cla 
the encoded data stream 



(gX 4 ) preventing 

verification vain 
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rn 12, in which receiving and verifying the integrity of 
further includes: 



further processing of the encoded data stream if the fourth 
s is not equal to the first recovered hash value. 



(original): A method for encoding a block of content in a manner designed to 
facilitate authentication, the method including: 



(a) hashing a first portion 



of the block of content to obtain a first hash value; 



(b) hashing a combination 
to obtain a second 



of the first hash value and a first data verification value 
verification value; 



(c) hashing a second portion of the block of content to obtain a second hash 
value; 



(d) 



hashing a combination]) 
to obtain a fourth 
derived, at least in 



of the second hash value and a third verification value 
verification value, wherein the third verification value is 
;, from the second verification value; 



pait 



(f) sending the digital sig 
third verification value 
block of content, and 
storage device. 



(original): A method as in 
least in part, from a third portion 



16-25. (canceled) 
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(e) generating a digital signature by signing the fourth verification value using a 
cryptographic key; ami 



lature, the second portion of the block of content, the 
the second verification value, the first portion of the 
he first verification value to a computer readable 



claim 14, in which the first verification value is derived, at 
of the block of content. 
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26. 



(currently amended): A_ 
designed to facilitate 



method for encoding a block of content in a manner 



authentication, the method including: 



(a) performing a first operation on a first portion of the block of content to obtain a 



first transformed value 



(b) performing a second operation on a first input and th e first transformed value 



to obtain a first check value: 



(c) performing the first operation on a second portion of the block of content to 



obtain a second transformed value: and 



operation on a second input and the second. 
transformed value to obtain a second check value, wherein the second input 



(d> performing the seconc 



cryptographic kev: and 



second input, the first 
and the first input to a 



wherein A mothod as i n c l a i m 
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is derived, at least in tart, from the first check value: 



(e\ generating a digital sic mature bv signing the second check value using a 



ffl sending the digital signature, the second portion of the block of c ontent, the 



check value, the first portion of the block of content. 



computer readable storage device: 



20) in which the first input is derived, at least in part, 



from a third portion of the blcjck of content, 
27-30. (canceled) 

31 . (currently amended): A method for verifying the integrity of data contained in a data 
stream, the method including : 



PUG 12 2004 18:22 FR F I NNEGfiN HENDERSON 650 849 6666 TO 1 ?038729306tt 



P. 10 



Appln. No. 09/543,750 
Amdt./Response dated August 12, 2004 
Reply to Office Action mailed May 12, 2004 



32. 



(a) 



receiving an encrypted 
derived, at least in part 
fourth check value, and 



first check value, the encrypted first check value being 
, from a second check value, a third check value, a 
the data; 



(b) 
(c) 
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decrypting the encrypted first check value; 

receiving a first block of data and the second check value; 

obtaining a first calculated check value by performing a predefined operation 
on a combination of(i) 3 value derived from the first block of data, and (ii) the 



second check value; 

(e) comparing the first eh^ck value with the first calculated check valii- 

(f) allowing at least one use of the first block of data if the first check value is 



equal to the first calcu 



ated check value; 



(9) 



receiving the third che;k value, a second block of data, and the fourth check 
value; 
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(h) obtaining a second ca culated check value by performing the predefined 
operation on a combination of (i) a value derived from the second block of 
data, and (ii) the fourth check value; 

(i) comparing the third cr eck value with the second calculated check value; and 

(l)(j) allowing at least one i se of the second block of data if the third check value is 
equal to the second calculated check value. 

(original): A method as in cteiim 31 , in which the at least one use of the first block of 
data includes one of: sending the first block of data to a speaker system; displaying 
the first block of data on a viewing device; printing the first block of data; and storing 
the first block of data on a computer readable medium. 
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33. 



34. 



(original): A method as in da 
hashing operation. 



(original): A method as in cla 
from the first block of data 
concatenation of the second 



m 33, in which the combination of(i) the value derived 
and, (ii) the second check value comprises a 
check value with a hash of the first block of data. 



35. 



(original): A method as in 
least in part, from the third 
derived, at least in part, from 



claim 31 , in which the second check value is derived, at 
check value, and In which the third check value is 
the fourth check value. 



36-44. (canceled) 



45. (currently amended): A system for performing fault-tole rant authentication of a 



stream of data, the system including 



(a) a receiver for receiving 



errors in a correspond 



detection logic, and to 



predefined error condition is satisfied: and 
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m 31, in which the predefined operation comprises a 



sub-blocks of the stream of data, error-check values 
corresponding to the sjub-blocks. and verification values in a chain of 



verification values associated with the stream of data, wherein each 



verification value in the chain is derived, at lea st in part, from (ft a sub-block of 



the stream of data, an J at least one other ve rification value in the chain: 



(b) error-detection logic o jerable to use a received error-check value to detect 



ino sub-block of the stream of data: 



(c) error-handling logic operable to record the detection of errors by t he error- 



block the receipt of additional sub-blocks if a 



(d) authentication looic operable to use a first received verificat ion value to verify 



the integrity of a second received verification value and one of (fl a received 



sub-block of the data istream. and ni) a received error-check value: 



-10- 
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46. 
47. 



13, in which the predefined error condition is the 



wherein A oystom as in claim 

detection of a predefined pattern of errors by the error-detection logic, 
(canceled) 

(currently amended); A system for performing fault-tole rant authentication of a 



stream of data, the system including: 



(a) a receiver for receivinc 



errors in a correspond 



detection logic, and to 
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sub-blocks of the stream of data, error-check values 



corresponding to the sub-blocks, and verification values in a chain of 



verification values associated with the stream of data, wherein each 



verification value in the chain is derived, at least in part, from (i) a sub-block of 



the stream of data, am J (in at least one other verification value in the chain; 



lb) error-detection logic operable to use a received error-check value to detect 



ng sub-block of the stream of data; 



(c) error-handling logic oc enable to record the detection of error s bv the error- 



block the receipt of additional sub-blocks rf a 



predefined error condition is satisfied: and 



(6) authentication logic operable to use a first received verification value to verify 



the integrity of a second received verification value and one of 0) a received 



sub-block of the data Stream, and (in a received error-check value; 



4 3 r i n wh i ch the error-detection logic includes: 



wherein A ovctom ac in claim 

hashing logic for computing k hash of a sub-block of the stream of data; 
comparison logic for comparing the hash of the sub-block with a received error- 
check value. 



48-52. (canceled) 
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53. (currently amended): A method for encoding a block of da ta in a manner designed 



to facilitate fault-tolerant authentication, the method including: 



generating a progression of c neck values, each check value in the progression being 



derived from a portion of the block of data and from at least o ne other check value in 



the progression; 
generating an encoded block 



inserting each check value of the progression into the block of data, each 



check value being inserted in proximity to a portion of the block of data to 



which it corresponds: 4nd 



inserting error-check values into the block of data, each error-check value 



being inserted in proxi -nitv to a portion of the block of data to w hich it 



progression of check \ 



system Is able to receive ant 



before the entire encoded block of data is received; 



wherein A method os i n c l aim 



of the portion of the block of data to which it corresponds 



54. (canceled) 

55. (original): A method for sect 



selecting a portion of the data block; 
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of data, including: 



corresponds, and eaclh error-check value being operable to facilitate 
authentication of a portion of the block of data and of a check value in the 



r alues; 



transmitting the encoded bloAk of data to a user's system, wher eby the user's 



authenticate portions of the encoded block of data 



52, i n which each error-check value comprises a hash 



rely accessing a data block, the method including: 
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56. 
57. 

58. 



i 

loading a root verification vjrali e and one or more stored check values in a hierarchy 
of check values into a merhor/ unit, wherein the hierarchy of check values is 
derived, at least in part, from pn uncorrupted version of the data block; 

i 

verifying the integrity of thb otpe or more stored check values using, at least in part, 

the root verification value; j 

i 

generating a calculated check value by performing a transformation on a first sub- 
block of the data block, th4 fir|st sub-block including at least part of the selected 
portion of the data block; j 

comparing the calculated the ck value with a first verified stored check value; and 

releasing at least part of tlpe 5 elected portion of the data block for use if the 
calculated check value equals the first verified stored check value. 



(original): A method as in; els 

(original): A method as inicls 

i 

decrypting a digital signature 
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irn 55, in which the memory unit comprises a stack. 

im 55, in which the root verification value is obtained by 
associated with the data block. 



(original): A method as in! cle irn 55, in which the root verification value is derived, at 
least in part, from the chepk values in the hierarchy of check values. 

59. (original): A method as in! clsiim 55, in which the memory unit is tamper-resistant 

60. (original): A method as in; d«iim 55, in which the hierarchy of check values 
comprises a tree data strgctire. 

i 

61 . (original): A method as in; clsiim 60, in which the tree data structure is symmetric. 

62. (original): A method as irj cl^im 61, in which the tree data structure has a branching 
factor of four. ; 
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2004 



63. (original): A method as in claim 55, further including: 



64. 



65. 



66. 



67. 



68. 



inhibiting at least one use of 
check value is not equal to 



the selected portion of the data block if the calculated 
th 3 first verified stored check value. 



(original): A method as in cla 
stored check values includes 



m 55, in which verifying the integrity of the one or more 



value 



using the root verification 
in the hierarchy of check valu 



to verify the integrity of a second stored check value 
es; and 



using the second stored chec|k value to verify the integrity of a first stored check 
value. 



(currently amended): A 
check value to verify the 



comparing the second stored 
wherein the calculated group 
check value with at least one 
check values as the first 



(original): A method as in 
comprises a first hash value, 
second hash value obtained 



(original): A method as in 
data block, and whereby the 
using the root verification 



(original): A method as in 
the data block, and whereby 
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metl>od as in claim 464, in which using the second stored 
integrity of the first stored check value includes: 



check value with a calculated group check value, 
check value is obtained by combining the first stored 
other check value at the same level in the hierarchy of 
stored check value. 



cl£ im 



55, in which the first verified stored check value 
and in which the calculated check value comprises a 
Dy hashing the first sub-block. 



cldim 55, whereby a user can select a first portion of the 

selected portion of the data block can be authenticated 
value without authenticating the entire data block. 



ckiim 



67, whereby the user can select a second portion of 
the second portion of the data block can be 
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authenticated using the root 
portion of the data block. 



verification value without re-authenticating the first 



69-70. (canceled) 
71. 



73. 



(original): A method for 
secure, quasi-random access 



encoding a digital file in a manner designed to facilitate 
to said digital file, the method including: 



generating a multi-level hierarchy 
more hash values on a first 
plurality of hash values on a 



of hash values from the digital file, wherein one or 
of the hierarchy are derived, at least in part, from a 
Second level of the hierarchy; 



level 



digitally signing a root hash 
from each of the hash values 



vlalue, the root hash value being derived, at least in part, 
in the hierarchy; and 



va 



storing the signed root hash 
level hierarchy of hash valuei 



72. (original): A method as in cle 
hash values includes: 



hashing a second portion of 
combining at least the first 



wherein the first and second 
of the multi-level hierarchy ol 
comprises at least part of sai 



(original): A method as in 
hash values includes concatenating 
hashing the result. 
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lue and a predefined number of levels of the multi- 
on a computer readable medium, 



im 71, in which generating the multi-level hierarchy of 



hashing a first portion of the digital file to obtain a first hash value; 

Jhe digital file to obtain a second hash value; 
aiid second hash values to yield a third hash value; 



lash values comprise at least part of said second level 
hash values, and wherein the third hash value 
j first level of the hierarchy of hash values. 



claim 



72, in which combining at least the first and second 
at least the first and second hash values and 
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74. (original): A method as in cla 
hash values can be retrieved 
of the digital file. 



m 71 , whereby at least a portion of the hierarchy of 
and used to authenticate an arbitrarily-selected portion 
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